Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.mft
File:                     nzmWaGPYL6i9HKOTaQX6HiSpoL8.mft (raw, json)
Hash identifier:          qt9tFK8Otv09HJq1DfXqf682/akW5vBDvM2/b8I0hZ8=
Subject key identifier:   26:E1:A2:B6:29:63:FF:68:1F:E8:35:7F:C4:B0:06:13:C6:F0:FE:0A
Authority key identifier: 9F:39:96:68:63:D8:2F:A8:BD:1C:A3:93:69:05:FA:1E:24:A9:A0:BF
Certificate issuer:       /CN=9f39966863d82fa8bd1ca3936905fa1e24a9a0bf
Certificate serial:       01992255E97F0C26911E8662A718B7D33AD2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/nzmWaGPYL6i9HKOTaQX6HiSpoL8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.mft
Manifest number:          15FF
Signing time:             Sun 07 Sep 2025 04:01:19 +0000
Manifest this update:     Sun 07 Sep 2025 04:01:19 +0000
Manifest next update:     Mon 08 Sep 2025 04:01:19 +0000
Files and hashes:         1: nzmWaGPYL6i9HKOTaQX6HiSpoL8.crl (hash: t6qCfAEFHuwDwu8mdQvLnVBlhVJdxreJOfbtCX5P8sE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/nzmWaGPYL6i9HKOTaQX6HiSpoL8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 04:01:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:55:e9:7f:0c:26:91:1e:86:62:a7:18:b7:d3:3a:d2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9f39966863d82fa8bd1ca3936905fa1e24a9a0bf
        Validity
            Not Before: Sep  7 04:01:19 2025 GMT
            Not After : Sep  8 04:01:19 2025 GMT
        Subject: CN=26e1a2b62963ff681fe8357fc4b00613c6f0fe0a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:0e:6f:5c:7d:53:ae:26:5d:d0:d3:62:f5:f3:
                    66:5f:54:c7:93:92:04:cc:c4:70:43:03:97:cc:c0:
                    9f:45:45:c7:d9:1b:f7:1f:80:0c:94:68:0d:c7:0d:
                    4a:9a:c1:eb:5a:ca:e7:34:d9:6d:97:66:8d:a0:26:
                    60:a2:37:1f:14:d5:6d:af:db:94:32:43:36:b3:4e:
                    f4:22:f2:e9:b5:51:9b:de:2f:9e:aa:fb:45:56:d1:
                    b3:22:62:34:b4:8f:29:70:24:18:5c:63:c1:27:f2:
                    58:1d:cf:4f:5a:f5:61:c7:ff:57:41:f0:58:e8:6c:
                    74:b4:a3:6d:d1:ea:b7:74:00:7f:5d:ab:5b:a5:4d:
                    2b:0c:5e:d4:78:bf:d4:6f:60:2f:cb:b2:91:70:bd:
                    9b:7d:57:39:a7:96:f6:7b:ef:37:a4:3c:06:f2:84:
                    3e:48:39:10:52:42:e3:bd:d0:30:bc:c0:25:02:5b:
                    d4:70:4d:25:8e:97:cb:d6:f5:41:6f:eb:70:2d:98:
                    09:fa:a6:c0:9d:69:8e:f2:a2:c7:c0:71:63:2e:15:
                    9c:d3:a6:4e:7f:89:c6:01:2c:37:19:14:fb:71:57:
                    0b:8f:56:0e:51:e0:fb:56:89:38:bc:44:f0:df:8e:
                    23:59:37:09:d8:09:9c:c8:e3:be:5d:b7:9a:da:8e:
                    78:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:E1:A2:B6:29:63:FF:68:1F:E8:35:7F:C4:B0:06:13:C6:F0:FE:0A
            X509v3 Authority Key Identifier:
                keyid:9F:39:96:68:63:D8:2F:A8:BD:1C:A3:93:69:05:FA:1E:24:A9:A0:BF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzmWaGPYL6i9HKOTaQX6HiSpoL8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6a:eb:54:56:a2:99:21:dd:ce:7b:ee:7d:0b:cb:4a:17:45:1d:
         bf:eb:ee:ea:5b:f7:30:be:97:f5:f1:29:da:3b:11:fe:31:67:
         26:92:2c:d9:42:52:9d:f3:7e:a5:52:07:97:dd:4c:67:f4:1d:
         0f:30:34:40:a4:19:14:50:50:03:7f:15:60:a5:e6:99:2d:11:
         69:cf:09:ca:88:61:8c:8b:94:be:0e:60:82:0d:87:ea:b8:b7:
         36:db:37:3c:15:ac:62:ff:4e:c3:ef:4c:ce:b1:67:c8:25:79:
         da:51:5d:21:79:91:9c:24:e3:5f:ef:5c:07:04:2c:ac:e2:08:
         2e:90:8c:2b:82:42:70:9b:88:36:ad:9c:0e:53:e8:a7:28:44:
         12:b9:66:54:67:0a:2b:32:bc:45:8a:fc:72:d1:9e:18:60:3e:
         4c:53:9b:5f:11:6c:1a:39:17:82:87:48:3f:5d:7d:fb:7b:02:
         36:b9:b8:d4:d5:28:b5:75:1a:38:1f:cf:d8:47:5f:cc:44:d8:
         84:cb:af:24:18:d6:87:9d:07:76:da:41:9e:24:4d:f2:da:85:
         c7:bd:6a:93:30:52:3a:ea:d7:f4:98:48:01:44:fc:33:9f:50:
         72:0a:ad:f6:ae:66:43:58:78:81:50:35:62:23:1e:66:0a:a4:
         f3:4f:3f:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----